CVE-2024-31858

CWE-787Out-of-bounds Write3 documents3 sources
Severity
7.3HIGH
EPSS
0.1%
top 73.64%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Intel Quickassist Technology
Timeline
PublishedFeb 12
Latest updateFeb 13

Description

Out-of-bounds write for some Intel(R) QuickAssist Technology software before version 2.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

CVEListV5intel(r)_quickassist_technology_softwarebefore version 2.2.0

Patches

Patch: intel.com

🔴Vulnerability Details

2
GHSA
GHSA-mj9v-hh2h-mg7f: Out-of-bounds write for some Intel(R) QuickAssist Technology software before version 22025-02-13
CVEList
CVE-2024-31858: Out-of-bounds write for some Intel(R) QuickAssist Technology software before version 22025-02-12
CVE-2024-31858 (HIGH CVSS 7.3) | Out-of-bounds write for some Intel( | cvebase.io